Trojan horse
Researchers claim to have discovered a centralised group of Trojan activity based in China

China accused of Trojan onslaught

Trail leads back to China-based operations including a government website

Written by Matt Chapman

vnunet.com, 04 Dec 2007

China is to blame for a wave of Trojans infecting PCs around the world, according to a new study.

Web security firm Finjan claims to have uncovered groups distributing content using obfuscated code and a network of websites to bypass traditional security, including one site belonging to a Chinese government office.

Finjan's Malicious Code Research Center said that it discovered a centralised group of activity based in China after investigating a sophisticated attack that used zero-day exploits and other new hacking techniques.

The company's researchers found that some parts of the network led to Trojan sites that exploit browser vulnerabilities and install malware on the user's desktop.

"Once the user's PC has been infected the Trojan starts to send data to other websites in the network which are hard to detect," the report said.

"Additional sites in the network monitor and control the attack using statistics about how many users visit the site and how many got infected."

The Trojans also collect data from the user, including which operating system is used, the applications that are running, personal information such as user names and passwords, and the security products installed.

Finjan explained that the collected information is then fed into other sites which refine the attack.

The news comes as MI5 warned 300 UK chief executives and security experts of an increased risk from Chinese hackers.

A previous attack on UK government servers was blamed on hackers in China, while other governments have also named the country.

These include an attack on the Pentagon in September, one in France in the same month and daily internet attacks in Germany in October.

"This development is disturbing for governments, enterprises and individuals alike," said Yuval Ben-Itzhak, chief technology officer at Finjan.

"Signature-based technologies like antivirus and URL filtering are limited against this type of attack, as the number of vectors and sophisticated structure of the network of websites can bypass traditional information security technology."

Full details of the Finjan study will be revealed later this month.

Tags:

reader comments

related articles

Spam

Spammers shift to spreading malware

2007 shows trend away from simply flogging products 04 Dec 2007

 

Security experts petition government on e-crime

Dedicated IT police force needed again 03 Dec 2007

MI5 warns of Chinese hack attacks

Top UK businesses get memo from spymasters 03 Dec 2007

FBI 'Bot Roast' scores string of arrests

Anti-botnet campaign claims success 03 Dec 2007

Under half of IT managers using encryption

Most companies feel secure against data leaks despite HMRC breach 30 Nov 2007

Fasthosts changes user passwords after hack

Web hosting firm acts quickly following intrusion alert 30 Nov 2007

Cyber attacks from Chinese government offices

A web site producing malicious material belongs to the government, claims software supplier 03 Dec 2007

Hackers unleash 'insidious' crimeware attack

Trusted websites turned into traps 14 Jan 2008

Sharp hike in cyber-attacks from China

Finjan reports new wave of malicious activity 17 Dec 2007

today's top stories

Hardware

Analysis: The true cost of printing

Organisations need to get a better sense of how much they spend on printing before finding ways to reduce it 05 Sep 2008

Management

Computing podcast 4 September 2008

Find out what Michael Dell told Computing, and listen to our take on the latest browser wars 04 Sep 2008

Hardware

Looking to the future - exclusive Michael Dell interview

Dell's chief executive talks to Computing about the way the company continues to adapt to major changes in the industry 04 Sep 2008

Internet

Interview: Delivering power where it's needed at Betfair

The online gambling firm is putting its money on grid computing and virtualisation to underpin global expansion 04 Sep 2008

Hardware

E-paper displays are an open book

A display revolution is on the way - but only once the user interface issues are solved 04 Sep 2008

> More news

Most commented stories

> More

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job

Advertisement

White papers

Search white papers

Top categories

VPN, Extranet and Intranet Solutions

WAN/ LAN Solutions

Network Security

Interoperability-Connectivity

Grid/ Utility Computing

Latest poll

Would you use a mobile phone as an alternative to cash?

Would you use a mobile phone as an alternative to cash?

When mobile phones include inbuilt payment technology - would you use one instead of cash?

Previous poll results

> More polls

Latest audio and video articles

BlackBerry BoldVideo

Video Review: BlackBerry Bold

Technology editor Daniel Robinson takes a hands-on look at the latest device from Research in Motion 01 Sep 2008

Podcast imageAudio

Computing podcast 4 September 2008

Find out what Michael Dell told Computing, and listen to our take on the latest browser wars 04 Sep 2008

> More audio and video

Latest in-depth articles

A meetingAnalysis

Turning adversity into an advantage

IT chiefs under pressure to make cost cuts can turn the situation to their benefit 04 Sep 2008

CloudAnalysis

How to introduce cloud computing into your organisation

Best practice advice from Forrester Research 04 Sep 2008

> More in depth articles

Primary Navigation